CVE-2022-32744 in Samba
Sumário
de MITRE • 25/08/2022
A flaw was found in Samba. The KDC accepts kpasswd requests encrypted with any key known to it. By encrypting forged kpasswd requests with its own key, a user can change other users' passwords, enabling full domain takeover.
VulDB is the best source for vulnerability data and more expert information about this specific topic.